CVE-2008-4610

MPlayer - Denial of Service via Malformed AAC or OGM File

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2008-4610. PoCs published by Hanno Bock.

AI-analyzed exploit summary The provided text describes a denial-of-service vulnerability in MPlayer when handling malformed media files. It references an external source (SecurityFocus) and provides a link to a binary exploit file.

Description

MPlayer allows remote attackers to cause a denial of service (application crash) via (1) a malformed AAC file, as demonstrated by lol-vlc.aac; or (2) a malformed Ogg Media (OGM) file, as demonstrated by lol-ffplay.ogm, different vectors than CVE-2007-6718.

Exploits (2)

exploitdb WRITEUP VERIFIED
by Hanno Bock · textdoslinux
https://www.exploit-db.com/exploits/32857

The provided text describes a denial-of-service vulnerability in MPlayer when handling malformed media files. It references an external source (SecurityFocus) and provides a link to a binary exploit file.

Classification
Writeup 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Theoretical
Target: MPlayer (version not specified)
No auth needed
Prerequisites: A malformed media file
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Hanno Bock · textdoslinux
https://www.exploit-db.com/exploits/32856

The provided text describes a denial-of-service vulnerability in MPlayer when handling malformed media files. It references an external source (SecurityFocus) and a binary exploit file hosted on GitLab.

Classification
Writeup 90%
Attack Type
Dos
Complexity
Moderate
Reliability
Theoretical
Target: MPlayer (version not specified)
No auth needed
Prerequisites: A malformed media file
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2008/10/07/1
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-734-1
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/34296

Scores

EPSS 0.0928
EPSS Percentile 94.7%

Details

CWE
CWE-399
Status published
Products (20)
mplayer/mplayer 0.90
mplayer/mplayer 0.90_pre
mplayer/mplayer 0.90_rc
mplayer/mplayer 0.90_rc4
mplayer/mplayer 0.91
mplayer/mplayer 0.92
mplayer/mplayer 0.92.1
mplayer/mplayer 0.92_cvs
mplayer/mplayer 1.0_pre1
mplayer/mplayer 1.0_pre2
... and 10 more
Published Oct 20, 2008
Tracked Since Feb 18, 2026